Main   Products   Offshore Outsourcing   Customers   Partners   ContactUs  
JDBC Databases
  HXTT Access v5.2
 
  Buy Now
  Support
  Download
  Document
  FAQ
  HXTT Cobol v2.1
  HXTT DBF v5.2
  HXTT Excel v4.2
  HXTT Paradox v5.2
  HXTT Text(CSV) v5.2
  HXTT XML v1.2
Offshore Outsourcing
Oracle Data Import/Export
DB2 Data Import/Export
Sybase Data Import/Export
Free Resources
  Firewall Tunneling
  Search Indexing Robot
  Conditional Compilation
  Password Recovery for MS Access
  Password Recovery for Corel Paradox
  Checksum Tool for MD5
  Character Set Converter
  Pyramid - Poker of ZYH
   
   
   
Hongxin Technology & Trade Ltd. of Xiangtan City (abbr, HXTT)

HXTT ACCESS
JET4 and JET3 Exploit files?
Ahmad
2008-06-09 00:05:47.0

Dear Sir

i am infosec Engineer and we detected an exploit in your Access_JDBC30.jar file in one of our clients , actually different antivirus product detected (JET4) as crafted .MDB file which attempts to exploit a vulnerability in Microsoft Jet Database Engine (Jet) that could allow remote code execution.
More information about the said vulnerability can be found in the following link:
Microsoft Security Advisory (950627)
Once successfully exploited, the said vulnerability could allow this Trojan to drop and execute an .EXE file detected by Trend Micro as TROJ_AGENT.AABE. As a result, routines of the dropped file may be exhibited on the affected machine.

check the following site:
http://www.virustotal.com/analisis/23f36bc240d6bfc33b6e1b447aecdd51

and detected by Symantec as Bloodhound.Exploit.183
http://www.symantec.com/security_response/writeup.jsp?docid=2008-032619-5301-99&tabid=2

i already searched your support forum and found others ask about it as in:
http://www.hxtt.com/support_view_issue.jsp?product=access&id=1204642869

but the answers were not enough we need more clarifications please !!!
Re:JET4 and JET3 Exploit files?
HXTT Support
2008-06-09 02:08:47.0
It's still a wrong virus report. After we reported Avast that issue, it seems Avast doesn't report wrongly again.
Please check http://www.virustotal.com/analisis/617eb1c7b3ebb0c281bcead74eef95e1, you will see only
eSafe 7.0.15.0 2008.06.05 Suspicious Archive Structure
If you see
http://www.virustotal.com/analisis/d7b1b9bf936983e63b080589f54b4ac7
you will find that wrong report happened only when that same JET4 file is in a zip file, and disappear when it is scanned as a single file.

Search Key   Search by Last 50 Questions




Google
 

Address: 9 Station Rd., Xiangtan City, Hunan Province, P.R. China
Postcode: 411100
Phone: (86)731-58225727
Fax: (86)731-58225727
Email: webmaster@hxtt.com
Copyright © 1999-2011 Hongxin Technology & Trade Ltd. | All Rights Reserved. | Privacy | Legal | Sitemap